Author Topic: xAV.TEAM:[6.0.1091][SOLVED]-Repetitive scanning of trust program(in autosandbox)  (Read 6167 times)

0 Members and 1 Guest are viewing this topic.

Offline GaAs

  • Full Member
  • ***
  • Posts: 181
  • My CPU is well seasoned. Mmmm, so good!
Hi All.
Hi Avast Team.

Autosandbox asks me what to do to crtlvol.exe (acer hardware volume control).
I say: run normally and remember my answer.

Problem: Whenever I run the crtlvol.exe FileSystemShield scans the file for each call I make I (FN + key Up or Down [volume setting]). This slows down the system until the completion of all keyboard input produced by the volume keys.
(Transient cache is on).
Want to send the file?
Let me know, thanks.


Now with the 6.0.1086 is worse than before.
But at least you have heard me, Avast Software???
See png image.


Oooook! With 6.0.1091 the problem is solved.
Thanks all You.
Thanks PK.
Thanks Avast! Software.
« Last Edit: April 18, 2011, 10:36:02 PM by GaAs »
Another antivirus, Core Duo T5600, 2.0 GB of RAM, W7_32bit, old oooooold whisky!

Offline Zyndstoff (aka Steven Gail)

  • Avast Evangelist
  • Massive Poster
  • ***
  • Posts: 2613
  • I can resist anything except temptation.
    • tex62
Add the prog to the exlusion list in Filesystem Shield expert settings.
7 x64 SP1, FF 8a Aurora, TB6, 6.0.1203 Free
Free MBAM Clear

Offline GaAs

  • Full Member
  • ***
  • Posts: 181
  • My CPU is well seasoned. Mmmm, so good!
Add the prog to the exlusion list in Filesystem Shield expert settings.

Hi All.
Hi Zyndstoff.
With the inclusion in the  exclusions file list is no longer scanned by the File System Shield.
 However this is wrong. In fact, avast must scan this file as I have previously decided, namely:
 1) no autosandbox (default: run: always normally);
 2) transient cache = on, then scan the file and then re-scan after updating signatures.
 Thanks.
Another antivirus, Core Duo T5600, 2.0 GB of RAM, W7_32bit, old oooooold whisky!

doktornotor

  • Guest
Then I do not know what you are asking for. Either exclude it, or live with the normal behaviour. When a program is run, it is scanned.

Offline Zyndstoff (aka Steven Gail)

  • Avast Evangelist
  • Massive Poster
  • ***
  • Posts: 2613
  • I can resist anything except temptation.
    • tex62
I don't see the point.

However: add the prog to the exclusion list and have it excluded on "execute" and "read" operations only.
This way it will be scanned only when writing the file, making sure that no malicious file will be written (e.g. driver update).
7 x64 SP1, FF 8a Aurora, TB6, 6.0.1203 Free
Free MBAM Clear

Offline Vladimyr

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1640
  • Super(massive black hole) Poster
Hi GaAs
There have been a number of cases like this - files continually scanned by the File System Shield. I'll PM you with a contact to initially send the file name to.
There is a way that seems right to a man,
       but in the end it leads to death
.” - Proverbs 16:25

Offline GaAs

  • Full Member
  • ***
  • Posts: 181
  • My CPU is well seasoned. Mmmm, so good!
I don't see the point.

However: add the prog to the exclusion list and have it excluded on "execute" and "read" operations only.
This way it will be scanned only when writing the file, making sure that no malicious file will be written (e.g. driver update).

Hi Zyndstoff.
I know exactly what you say.
But the point is: if avast is designed to make a single scan of that file (as I have said many times) and is designed to do another only if the signatures are updated, why I have to lose time in useless settings?
What I reported is an unequivocal sign that something in the code of avast is to be reviewed.
Thanks.
Another antivirus, Core Duo T5600, 2.0 GB of RAM, W7_32bit, old oooooold whisky!

Offline Zyndstoff (aka Steven Gail)

  • Avast Evangelist
  • Massive Poster
  • ***
  • Posts: 2613
  • I can resist anything except temptation.
    • tex62
I don't see the point.

However: add the prog to the exclusion list and have it excluded on "execute" and "read" operations only.
This way it will be scanned only when writing the file, making sure that no malicious file will be written (e.g. driver update).

Hi Zyndstoff.
I know exactly what you say.
But the point is: if avast is designed to make a single scan of that file (as I have said many times) and is designed to do another only if the signatures are updated, why I have to lose time in useless settings?
What I reported is an unequivocal sign that something in the code of avast is to be reviewed.
Thanks.


Yes, I understand that. I am sure, your message  reaches Avast devs.
In the meantime, until the bug is straightened out, I tried to offer some kind of workaround.
Sorry if that wasn't wished for.
7 x64 SP1, FF 8a Aurora, TB6, 6.0.1203 Free
Free MBAM Clear

Offline GaAs

  • Full Member
  • ***
  • Posts: 181
  • My CPU is well seasoned. Mmmm, so good!
Hi GaAs
There have been a number of cases like this - files continually scanned by the File System Shield. I'll PM you with a contact to initially send the file name to.

Thanks Vladimyr.
Sorry if I ask you: What do you mean by "PM"?. I'm not very good at speaking English. With the abbreviations .... even worse.
Sorry again. ;D
Another antivirus, Core Duo T5600, 2.0 GB of RAM, W7_32bit, old oooooold whisky!

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 67305
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Win 8.1 [x64] - Avast PremSec 20.9.2433.Beta1 [UI.569] - CC 5.72 - EEK - FF ESR 78.4 [NS/AOS/uBO/PB] - TB 78.3.3 - SB/CP/SL/DU.B
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline GaAs

  • Full Member
  • ***
  • Posts: 181
  • My CPU is well seasoned. Mmmm, so good!
I don't see the point.

However: add the prog to the exclusion list and have it excluded on "execute" and "read" operations only.
This way it will be scanned only when writing the file, making sure that no malicious file will be written (e.g. driver update).

Hi Zyndstoff.
I know exactly what you say.
But the point is: if avast is designed to make a single scan of that file (as I have said many times) and is designed to do another only if the signatures are updated, why I have to lose time in useless settings?
What I reported is an unequivocal sign that something in the code of avast is to be reviewed.
Thanks.


Yes, I understand that. I am sure, your message  reaches Avast devs.
In the meantime, until the bug is straightened out, I tried to offer some kind of workaround.
Sorry if that wasn't wished for.

No, you're wrong. Your solution I have appreciated very much.
 I meant only that the Avast team in my opinion must correct this problem.
 Sorry if I made them understand each other.
 Unfortunately, to write in a different language and have no direct contact with the other party sometimes it is difficult to express what they really think.
Thanks again, my Friend.
Another antivirus, Core Duo T5600, 2.0 GB of RAM, W7_32bit, old oooooold whisky!

Offline GaAs

  • Full Member
  • ***
  • Posts: 181
  • My CPU is well seasoned. Mmmm, so good!
Another antivirus, Core Duo T5600, 2.0 GB of RAM, W7_32bit, old oooooold whisky!

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 67305
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Thank you very much to you Asyn.
 ;)

You're welcome..!
Win 8.1 [x64] - Avast PremSec 20.9.2433.Beta1 [UI.569] - CC 5.72 - EEK - FF ESR 78.4 [NS/AOS/uBO/PB] - TB 78.3.3 - SB/CP/SL/DU.B
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline Zyndstoff (aka Steven Gail)

  • Avast Evangelist
  • Massive Poster
  • ***
  • Posts: 2613
  • I can resist anything except temptation.
    • tex62

No, you're wrong. Your solution I have appreciated very much.
 I meant only that the Avast team in my opinion must correct this problem.
 Sorry if I made them understand each other.
 Unfortunately, to write in a different language and have no direct contact with the other party sometimes it is difficult to express what they really think.
Thanks again, my Friend.


Oh, okay. Misunderstandings...  8)
7 x64 SP1, FF 8a Aurora, TB6, 6.0.1203 Free
Free MBAM Clear

Offline GaAs

  • Full Member
  • ***
  • Posts: 181
  • My CPU is well seasoned. Mmmm, so good!
Hi All.
Hi Avast Team.

Autosandbox asks me what to do to crtlvol.exe (acer hardware volume control).
I say: run normally and remember my answer.

Problem: Whenever I run the crtlvol.exe FileSystemShield scans the file for each call I make I (FN + key Up or Down [volume setting]). This slows down the system until the completion of all keyboard input produced by the volume keys.
(Transient cache is on).
Want to send the file?
Let me know, thanks.


Now with the 6.0.1086 is worse than before.
But at least you have heard me, Avast Software??????
Another antivirus, Core Duo T5600, 2.0 GB of RAM, W7_32bit, old oooooold whisky!